A vulnerability (that is presumably fixed after) is a lot different than an intentional backdoor.

> I think this is a really bad epistemological stance in this case.

Why? If one can't point to any evidence, how is it reasonable to suggest that a manufacturer is adding backdoors?